CN108173845A - Measuring instrument and information security interactive system with acp chip - Google Patents
Measuring instrument and information security interactive system with acp chip Download PDFInfo
- Publication number
- CN108173845A CN108173845A CN201711440099.7A CN201711440099A CN108173845A CN 108173845 A CN108173845 A CN 108173845A CN 201711440099 A CN201711440099 A CN 201711440099A CN 108173845 A CN108173845 A CN 108173845A
- Authority
- CN
- China
- Prior art keywords
- end data
- acp chip
- measuring instrument
- key
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0435—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0869—Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Power Engineering (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Storage Device Security (AREA)
Abstract
The present invention is intended to provide measuring instrument and information security interactive system with acp chip, to solve the information security issue in prior art, improve the safety of system information safety interaction, it is related to measuring instrument field, including acp chip, communication module, data acquisition module, key management module and business service module;Acp chip stores at least two keys;During for measuring instrument to server transmission table end data, a key pair table end data encryption is randomly assigned, encrypted table end data is sent to key management module through communication module and data acquisition module;Key management module is stored with the key of the acp chip, for table end data to be decrypted, and the table end data after decryption is sent to business service module;Business service module is used to be handled according to table end data.Acp chip randomly selects key pair table end data and is encrypted, and reduces the probability that key is cracked, and improves the safety of system information safety interaction.
Description
Technical field
The present invention relates to measuring instrument fields, and in particular to has the measuring instrument of acp chip and information security interaction system
System.
Background technology
Traditional mechanical watch needs to put into a large amount of manpowers progress manual meterings, and meter reading is of high cost, and meter reading rate is difficult to reach requirement,
And it can not realize pre paid functionality.IC card table can realize pre paid functionality, but must set up business hall so that user to be facilitated to fill
Value, and the practical gas consumption of user can not be obtained.
Each gas meter, flow meter producer is not quite similar to the understanding and definition of service logic, commences business to gas company and brings one
Fixed puzzlement.With the variation of social environment, also continuous variation occurs for the business of gas company, online gas meter, flow meter without
Method follows gas company's business to be changed, cause gas company need to spend a large amount of manpower and materials safeguard old product in addition because
For the male cousin that business change needs not arrive using the new table replacement service life, brought to gas company and have big cost of human and material resources.
Present gas meter, flow meter has stepped into the intelligent things netlist epoch.Recent years, Internet of Things gas meter, flow meter entered high speed development
Stage, various Intelligent internet of things gas meter, flow meters emerge in an endless stream.With extension of the gas meter, flow meter to Internet of Things field, the safety of Internet of Things is asked
Topic increasingly highlights, the security of the lives and property more to be affected the livelihood of every family safely with gas.Each gas meter, flow meter producer often unilaterally chases after
The considerations of asking low cost and quick launch, and ignoring to information security and input.Internet of Things gas meter, flow meter is logical at present
Data generally using being transmitted in plain text or after simple process during letter, even if part of the manufacturer uses certain encryption measures,
Since encryption method is simple, secret grade is not high so that communication data is easily cracked and is attacked, may be to combustion gas public affairs
Department and user cause damages or even threaten user with gas safety, existence information safety problem.
Correspondingly, other measuring instruments there is also it is corresponding the problem of.
Invention content
The present invention is intended to provide measuring instrument and information security interactive system with acp chip, to solve the prior art
Information security issue in scheme improves the safety of system information safety interaction.
In order to realize the purpose, the present invention has the measuring instrument information security interactive system of acp chip, system packet
It includes:Measuring instrument and server, the measuring instrument include acp chip and communication module, and the server is acquired including data
Module, key management module and business service module;
The acp chip stores at least two keys;During for measuring instrument to server transmission table end data, at random
Specified key pair table end data encryption, communication module is sent to by encrypted table end data;
The communication module is used to receive the table end data of acp chip transmission, and table end data is sent to data acquisition
Module;
The data acquisition module is used to receive the table end data of communication module transmission, and table end data is sent to key
Management module;
The key management module is stored with the key of the acp chip, for receiving the table of data acquisition module transmission
Table end data is decrypted in end data, and the table end data after decryption is sent to business service module;
The business service module is used to receive the table end data of key management module transmission, and is carried out according to table end data
Processing.
In the above-mentioned measuring instrument information security interactive system with acp chip, the business service module is used to send
End data is serviced to key management module;
The key management module is used to receive the service end data of business service module transmission, and service end data is passed through
Key is encrypted, and encrypted service end data is sent to data acquisition module;
The data acquisition module is used to receive the service end data of key management module transmission, and will service end data hair
It is sent to communication module;
The communication module is used to receive the service end data of key management module transmission, and service end data is sent to
Acp chip;
The acp chip receives the service end data that communication module receives, and service end data is decrypted.
In the above-mentioned measuring instrument information security interactive system with acp chip, the key management system is by based on
Measure instrument for the first time with server communication when, authentication is carried out to acp chip, acp chip after numbered, measured by certification
Meter number and user number are bound;And for receive data acquisition module send table end data when, to core core
Piece number carry out authentication, certification success after verification measuring instrument number and user number whether the Data Matching with binding,
If it does, then described the step of table end data is decrypted is performed, if it does not match, not performing described to table end data
The step of being decrypted;
And/or the acp chip is used to carry out authentication operation after receiving to service end data, if authentication
Pass through, then perform the step of described pair of service end data is decrypted, if authentication does not pass through, do not perform described pair of clothes
The step of business end data is decrypted.
In the above-mentioned measuring instrument information security interactive system with acp chip, the acp chip in different measuring instruments
Using different keys;And/or the control key management module is used to issue key algorithm or key, institute to acp chip
Acp chip is stated for receiving key algorithm or key that key management module issues, to initialize or update in acp chip
Key algorithm or key.
In the above-mentioned measuring instrument information security interactive system with acp chip, the acp chip is additionally operable to business and patrols
Processing is collected, wherein, the service logic includes clearing logic;The usage amount that logic is settled accounts according to measuring instrument end, service
The remaining sum at device end and the unit price of server end settled accounts or according to the usage amount at measuring instrument end and the surplus of server end into
Row clearing.
Another aspect of the present invention has the measuring instrument of acp chip, is used for and server communication, the measuring instrument
Including acp chip and communication module;
The acp chip stores at least two keys, for measuring instrument to server send table end data when, at random
Specified key pair table end data encryption, communication module is sent to by encrypted table end data;
The communication module is used to receive the table end data of acp chip transmission, and table end data is sent to server.
In the above-mentioned measuring instrument with acp chip, the communication module is used to receive the service end data of server,
And service end data is sent to acp chip;The acp chip is used to receive the service end data of communication module reception.
In the above-mentioned measuring instrument with acp chip, the acp chip is used to carry out body when receiving and servicing end data
Part authentication operation, if authentication passes through, the step of performing the data deciphering to server-side, if authentication is obstructed
The step of crossing, then not performing the data deciphering to server-side.
In the above-mentioned measuring instrument with acp chip, the acp chip is used to receive the key algorithm that server issues
Or key, to initialize or update the key algorithm or key in acp chip;And/or the acp chip storage at least two
Kind of key algorithm, it is described to be randomly assigned a key pair table end data encryption and include:A key is randomly assigned by selecting at random
A kind of key algorithm taken encrypts table end data.
In the above-mentioned measuring instrument with acp chip, the acp chip is used for business logic processing, wherein the industry
Logic of being engaged in includes clearing logic, and the clearing logic is according to the usage amount at measuring instrument end, the remaining sum of server end and server
The unit price at end is settled accounts or is settled accounts according to the usage amount at measuring instrument end and the surplus of server end.
Following advantageous effects can be obtained by implementing the present invention:
1. acp chip randomly selects key pair table end data and is encrypted, the probability that key is cracked is reduced, improves system
The safety of information security of uniting interaction.
2. the measuring instrument information security interactive system with acp chip has server and measuring instrument bidirectional identification
Authentication function;Improve the safety of system information safety interaction.
3. the measuring instrument information security interactive system with acp chip has, server and measuring instrument be two-way plus solution
Close function;Improve the safety of system information safety interaction.
4. upgradeable key algorithm or key;Improve the safety of system information safety interaction.
5. acp chip is integrated with business function, and has upgrading service function, convenience is improved.
Description of the drawings
Fig. 1 is the system connection diagram of embodiment 1;
Fig. 2 is the method flow diagram of embodiment 1;
Fig. 3 is the system connection diagram of embodiment 2;
Fig. 4 is the acp chip schematic diagram of embodiment 3.
Specific embodiment
For the ease of the understanding of those skilled in the art, the present invention is made further with reference to specific embodiment
It is bright:
Embodiment 1:
The present invention provides the measuring instrument information security interactive system with acp chip, as shown in Figure 1, system packet
It includes:Measuring instrument 1 and server 2, the measuring instrument 1 include acp chip 11 and communication module 12, and the server 2 includes
Data acquisition module 21, key management module 22 and business service module 23;The acp chip 11 stores at least two keys;
During for measuring instrument 1 to the transmission table end data of server 2, a key pair table end data encryption is randomly assigned, after encryption
Table end data be sent to communication module 12;The communication module 12 is used to receive the table end data of the transmission of acp chip 11, and
Table end data is sent to data acquisition module 21;The data acquisition module 21 is used to receive the table end of the transmission of communication module 12
Data, and table end data is sent to key management module 22;The key management module 22 is stored with the acp chip 11
Key, for receiving the table end data of the transmission of data acquisition module 21, table end data is decrypted, and by the table after decryption
End data is sent to business service module 23;The business service module 23 is used to receive the table end of the transmission of key management module 22
Data, and handled according to table end data.
Following advantageous effects can be obtained by implementing the present embodiment:The probability that key is cracked is reduced, improves system
The safety of information security of uniting interaction.
Its principle is as follows:Measuring instrument 1 sends table end data for the business service module 23 of server 2 to server 2
During processing, acp chip 11 randomly selects key pair table end data and is encrypted, and encrypted table end data sends key management
After module 22, key management module 22 is decrypted according to key, and the table end data after decryption is sent to business service mould
Block 23 is handled;It is encrypted by random key, can effectively reduce the probability that key is cracked.It is known that, core
The key that chip centroid 11 stores also has storage in key management module 22, therefore key management module 22 can be according to key pair core
11 encrypted table end data of chip is decrypted;It is known that, table end data and service end data hereinafter be in order to
Convenient for distinguishing two groups of data, its data in itself and is not particularly limited.
Table end data can be provided by metering instrument controller 13, and metering instrument controller 13 can include:Power supply module,
Metering module, alarm module, human-computer interaction module, valve control module and memory module.It is mainly responsible for and is recorded with gas, thing
Part records, the functions such as teleinstruction control.
In one embodiment, in order to improve server 2 to measuring instrument 1 send service end data when data safety
Property, the business service module 23 services end data to key management module 22 for sending;The key management module 22 is used
In the service end data for receiving the transmission of business service module 23, service end data is encrypted by key, and will be after encryption
Service end data be sent to data acquisition module 21;The data acquisition module 21 sends for receiving key management module 22
Service end data, and by service end data be sent to communication module 12;The communication module 12 is used to receive key management mould
The service end data that block 22 is sent, and service end data is sent to acp chip 11;The acp chip 11 receives communication mould
Service end data is decrypted in the service end data that block 12 receives.It is known that, it is close in order to which acp chip 11 can be decrypted
22 encrypted service end data of key management module, the key management module 22 is using the key pair service in corresponding nucleus module
End data is encrypted.
Service end data after according to circumstances decrypting can issue metering instrument controller 13;It is to close valve life such as to service end data
When enabling, it can carry out closing valve control by the valve control module in metering instrument controller 13.
In one embodiment, in order to further improve system information safety interaction safety, the key management
System is used for when measuring instrument 1 communicates for the first time with server 2, and authentication is carried out to acp chip 11, and certification will after
Acp chip number, measuring instrument number and user number are bound;And for receiving what data acquisition module 21 was sent
During table end data, acp chip is numbered and carries out authentication, verification measuring instrument number and user number are after certification success
The no Data Matching with binding, if it does, then described the step of table end data is decrypted is performed, if it does not match,
Described the step of table end data is decrypted is not performed.It is known that, acp chip number, measuring instrument number and user
Number all it is unique.It will also be appreciated that, measuring instrument number and user number can record corresponding relationship when opening an account.
In one embodiment, in order to further improve system information safety interaction safety, the acp chip
11 are used to carry out authentication operation after receiving to service end data, if authentication passes through, perform described to server-side
The step of data are decrypted if authentication does not pass through, does not perform the step of described pair of service end data is decrypted.
In one embodiment, in order to further improve system information safety interaction safety, different measuring instruments 1
Interior acp chip 11 uses different keys.Even if the key of some measuring instrument 1 is cracked, other gauges are nor affected on
The secure communication of table 1.
In one embodiment, in order to further improve system information safety interaction safety, the control key
Management module 22 is used to issue key algorithm or key to acp chip 11, and the acp chip 11 is used to receive key management mould
The key algorithm or key that block 22 issues, to initialize or update the key algorithm or key in acp chip 11.Control key
Management module 22 is used to issue key algorithm or key to acp chip 11, and then update the key in (upgrading) acp chip 11
Algorithm or key can not only prevent key to be cracked, but also can be according to other needs more new keys or key algorithm, and then improve
The safety of system information safety interaction.
In one embodiment, in order to enhance table end function, the acp chip 11 is additionally operable to execution business and patrols
Volume, wherein, the service logic includes clearing logic;The usage amount that logic is settled accounts according to measuring instrument end, server end
Remaining sum and the unit price of server end settled accounts or tied according to the usage amount at measuring instrument end and the surplus of server end
It calculates.It realizes the clearing of table end, and then can still realize settlement function in the case where that can not communicate;And due to being based on servicing
End data is settled accounts, therefore after it can communicate, settlement data is corrected automatically, improves the accuracy rate of clearing.It, can be with after clearing
Remaining sum after clearing or surplus with given threshold are compared, and then judge whether that control valve closes valve according to comparison result.
Service logic can also include post-paid mode logic.
In one embodiment, measuring instrument was automatically performed and communicates with server 2, realize table end according to the meter reading period
With server-side user record and the amount of money it is synchronous.
In one embodiment, service provider can upgrade the acp chip 11 of measuring instrument 1 by server 2.Service provider
The product scope (product code, version number) upgraded is needed by the setting of business service module 23.
After measuring instrument 1 connect with server 2 and confirms identity, service server 2 will obtain measuring instrument 1 product generation
Code and version number, and the product scope with needing to upgrade is matched, if matched, will issue upgrade package to measuring instrument 1.
Measuring instrument 1 will verify the integrality of upgrade package and correctness after receiving upgrade package, after being verified
Upgrade procedure will be performed.
Active and server 2 are communicatively coupled by measuring instrument 1 after the completion of upgrading, and business service module 23 will be obtained and be counted
Product code and the version number of instrument 1 are measured, updating result is confirmed.
In one embodiment, business service module storage is recorded with gas, supplements record, balance status with money, and user can be
Line inquiry is recorded with gas, supplements record and balance status with money, and after opening prepaid billing mode, business service module will be pushed to user
Residual amount prompt message, user may be implemented in line recharging service.
In one embodiment, system includes card-issuing module, and key management module is by the card-issuing module to core
Chip is initialized.
In the present embodiment, data acquisition module 21 and communication module 12 can be wire communication module or radio communication mold
Block, such as RF (Radio Frequency) module, LoRa modules, 2G (The 2nd Generation) module, 3G (3rd-
Generation) module, NB-lOT (Narrow Band Internet of Things) module, RS485 modules etc..
A kind of implementation method interacted below for system information safety in the present embodiment, as shown in Figure 2:
Step S1:Key management module completes the initialization to acp chip by card-issuing module, and initialization package is containing generation
And download key and Encryption Algorithm;
Step S2:When measuring instrument with acp chip is communicated with server, table end data is transferred into core core
Piece is randomly assigned key and Encryption Algorithm by acp chip and table end data is encrypted;
Step S3:Encrypted table end data is sent to data acquisition module by acp chip by communication module;
Step S4:The black list end data received is sent to key management module by data acquisition module;
Step S5:If measuring instrument carries out identity to acp chip and recognizes with server communication, key management module for the first time
Card, certification numbers acp chip after, measuring instrument number and user number are bound;If measuring instrument it is non-for the first time and
Server communication numbers acp chip and carries out authentication, and verification measuring instrument number and user number are after certification success
The no Data Matching with binding.
Step S6:After fitting through, table end data is decrypted, the table end data after decryption is sent to business service
Module;
Step S7:After the completion of business service module processing, service end data is sent (such as:Close valve instruction etc.) to key management
Module;
Step S8:Key management module is to server-side data encryption;Encrypted service end data is sent to data acquisition
Module;
Step S9:Data acquisition module is sent to communication module by end data is serviced;
Step S10:Communication module is sent to acp chip by end data is serviced;
Step S11:Service end data is decrypted in acp chip, and the service end data after decryption is sent to gauge
Table controller;
Step S12:Metering instrument controller is handled according to service end data (if service end data is closes valve instruction
When, metering instrument controller control valve controller control valve door closes valve).
Initialization can also include:Downloading service logic;Metering instrument controller 13 detects (such as combustion gas when event occurs
When table look-up is to gas), event information is sent to acp chip 11, acp chip 11 performs related service logic.Such as basis
Gas consumption is settled accounts, and determines whether that control valve closes valve according to checkout result.
Embodiment 2:
As shown in figure 3, the measuring instrument with acp chip, for communicating with server 2, the measuring instrument 1 includes
Acp chip 11 and communication module 12;
The acp chip 11 stores at least two keys, for measuring instrument 1 to server 2 send table end data when,
A key pair table end data encryption is randomly assigned, encrypted table end data is sent to communication module 12;
The communication module 12 is used to receive the table end data of the transmission of acp chip 11, and table end data is sent to service
Device 2.
Following advantageous effects can be obtained by implementing the present embodiment:The probability that key is cracked is reduced, improves system
The safety of information security of uniting interaction.
In one embodiment, in order to improve the safety of data interaction, the communication module 12 is used to receive service
The service end data of device 2, and service end data is sent to acp chip 11;The acp chip 11 is used to receive communication module
The 12 service end datas received.
In one embodiment, in order to improve the safety of data interaction, the acp chip 11 is used to receive clothes
It is engaged in carrying out authentication operation during end data, if authentication passes through, the step of performing the data deciphering to server-side,
If authentication does not pass through, the step of not performing the data deciphering to server-side.
In one embodiment, in order to improve the safety of data interaction, the acp chip 11 is used to receive service
The key algorithm or key that device 2 issues, to initialize or update the key algorithm or key in acp chip 11;
In one embodiment, in order to improve the safety of data interaction, the acp chip 11 stores at least two
Key algorithm, it is described to be randomly assigned the encryption of key pair table end data and include:A key is randomly assigned by randomly selecting
A kind of key algorithm to table end data encrypt.By randomly selected key and randomly selected key algorithm, substantially reduce
The probability being cracked.Upgrade with reference to the update of key algorithm, upgrading, Ke Yijin can be updated periodically or when being cracked
The safety of one step guarantee communication.Optionally, multiple encryption algorithms (ECC, AES, RSA) built in acp chip 11 supports symmetrical add
Close algorithm and rivest, shamir, adelman, for carrying out authentication, symmetric encipherment algorithm is used for into line number rivest, shamir, adelman
According to encryption.
In one embodiment, the acp chip 11 is used for business logic processing, wherein the service logic includes
Settle accounts logic, it is described clearing logic according to the usage amount at measuring instrument end, the remaining sum of server end and server end unit price into
Row clearing are settled accounts according to the usage amount at measuring instrument end and the surplus of server end.Realize the clearing of table end, and then can be with
In the case where that can not communicate, settlement function can be still realized;And settled accounts due to being based on service end data, therefore can lead to
After letter, settlement data is corrected automatically, improves the accuracy rate of clearing.It, can also be by the remaining sum after clearing or surplus with setting after clearing
Determine threshold value to be compared, and then judge whether that control valve closes valve according to comparison result.Service logic can also include post-paid
Mode logic.
In one embodiment, measuring instrument 1 was automatically performed and communicates with server 2, realize table end according to the meter reading period
With server-side user record and settlement amounts it is synchronous.
In one embodiment, acp chip 11 supports prepaid billing mode and post-paid pattern, and prepaid billing mode is supported
Table end is settled accounts and background server 2 is settled accounts, price schema ladder support price and non-progressive price, settlement mode support amount formula knot
It calculates and amount of money formula is settled accounts.
Embodiment 3:
It is connect as shown in figure 4, acp chip 11 includes communication interface 111, Logical processing unit 112, metering instrument controller
Mouth 113, core memory area 114 and encrypted code area 115.
Metering instrument controller interface 113 is used to communicate with metering instrument controller;
Communication interface 111 is for controlling communication module, into row data communication;
For storing core data, the core data includes key in core memory area 114;
Encrypted code area 115 is used to store the code for data being encrypted in communication process algorithm;
Logical processing unit 112 is used to perform encryption logic, the encryption logic:Obtain metering instrument controller interface
113 table end data, the random key obtained in core memory area 114 are calculated by the encryption for performing encrypted code area 115
Table end data is encrypted in the code of method;And encrypted data are sent to communication interface.
Communication interface by table end data by communication module being sent to the external equipment to communicate with communication module.
In one embodiment, the encrypted code area 115 further includes the code of decipherment algorithm, and the encryption logic is also
Including:Receive the service end data of communication interface, the decryption of key and encrypted code area 115 in core memory area 114
Service end data is decrypted in algorithm, and the service end data after decryption is sent to metering instrument controller interface 113.
In one embodiment, encrypted code area 115 is additionally operable to store the code for carrying out communicating pair authentication.
Encryption logic further includes:The service end data of communication module interface is obtained, authentication is carried out to service end data transmission source, such as
Fruit certification passes through, and the decipherment algorithm of key and encrypted code area 115 in core memory area 114 carries out service end data
Decryption, metering instrument controller interface 113 is sent to by the service end data after decryption.
In one embodiment, acp chip further includes service code area 116;Service code area 116 is used to store industry
Business logic, the service logic can be the service logics that service provider formulates;Logical processing unit 112 is additionally operable to holding for service logic
Row;Core data further includes business datum.
Service logic includes clearing logic, the metering that the clearing logic is received according to metering instrument controller interface 113
The server-side remaining sum and server end unit price that instrument end usage amount, communication interface receive are settled accounts or are controlled according to measuring instrument
The server end surplus that the measuring instrument end usage amount and communication interface that device interface 113 receives receive is settled accounts.Knowing to make
Dosage, remaining sum and unit price;Or after knowing usage amount and surplus, how to settle accounts is the prior art, and the present embodiment is not described in detail.
In one embodiment, acp chip further includes user storage area 117, and the user storage area 117 is used to deposit
The data that storage metering instrument controller defines.
In one embodiment, acp chip further includes upgrade code area 118, and the upgrade code area 118 is for liter
Grade service code area 116 and encrypted code area 115, when needing to upgrade business or encryption logic, upgrade code area 118
It will be responsible for new service logic and encryption logic being written to service code area 116 and encrypted code area 115.
In the present embodiment, acp chip can be used for performing service provider's business operation, encrypting and decrypting operation, authentication behaviour
Make, improve data interaction safety, improve business operation convenience.
In the present embodiment, acp chip can provide the user storage space of high safety grade and core memory space, core
Memory space is for storing key and Encryption Algorithm, and (wallet, progressive price are recorded measuring instrument core parameter with gas, server
Address alerts the amount of money, alerts tolerance, the amount of money of overdrawing, overdraw tolerance, meter reading period etc. parameters), user storage space can be used for depositing
Put the data that metering instrument controller defines.
In the present embodiment, each acp chip is numbered with Unique Chip.
In the present embodiment, acp chip have multiple keys, even if some key is cracked, can switch to other keys into
Row data encrypting and deciphering operates.
In the present embodiment, multiple encryption algorithms built in acp chip (ECC, AES, RSA) support symmetric encipherment algorithm and non-
Symmetric encipherment algorithm, for carrying out authentication, symmetric encipherment algorithm is used to carry out data encryption rivest, shamir, adelman.
In the present embodiment, acp chip supports key and key algorithm online updating function, is connected being established with server
And after carrying out authentication, allow to carry out remote upgrade acp chip key and key algorithm by server, improve convenience.
In the present embodiment, acp chip supports business operation online upgrading function, connects and carries out being established with server
After authentication, allow to carry out remote upgrade business operation by server, improve convenience.
In the present embodiment, acp chip stores the core parameter of gauge table, can customize combustion gas according to gas service quotient demand
Table core business is, it can be achieved that with progressive price and non-progressive price management function, wallet function, the amount of money, tolerance settlement function,
With gas writing function, unify the service logic of different service providers, improve convenience.
Technical characteristic the foregoing is merely specific embodiments of the present invention, but the present invention is not limited thereto, Ren Heben
The technical staff in field in the field of the invention, all cover among the scope of the claims of the present invention by the variation or modification made.
It should be noted that herein, relational terms such as first and second and the like are used merely to a reality
Body or operation are distinguished with another entity or operation, are deposited without necessarily requiring or implying between these entities or operation
In any this practical relationship or sequence.Moreover, term " comprising ", "comprising" or its any other variant are intended to
Non-exclusive inclusion, so that process, method, article or equipment including a series of elements not only will including those
Element, but also including other elements that are not explicitly listed or further include as this process, method, article or equipment
Intrinsic element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that
Also there are other identical elements in process, method, article or equipment including the element.
The above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations;Although with reference to the foregoing embodiments
The present invention is described in detail, it will be understood by those of ordinary skill in the art that:It still can be to aforementioned each implementation
Technical solution recorded in example modifies or carries out equivalent replacement to which part technical characteristic;And these modification or
It replaces, the spirit and scope for various embodiments of the present invention technical solution that it does not separate the essence of the corresponding technical solution.
Claims (10)
1. the measuring instrument information security interactive system with acp chip, which is characterized in that system includes:Measuring instrument kimonos
Business device, the measuring instrument include acp chip and communication module, and the server includes data acquisition module, key management mould
Block and business service module;
The acp chip stores at least two keys;During for measuring instrument to server transmission table end data, it is randomly assigned
One key pair table end data encryption, communication module is sent to by encrypted table end data;
The communication module is used to receive the table end data of acp chip transmission, and table end data is sent to data acquisition module
Block;
The data acquisition module is used to receive the table end data of communication module transmission, and table end data is sent to key management
Module;
The key management module is stored with the key of the acp chip, for receiving the table end number of data acquisition module transmission
According to table end data being decrypted, and the table end data after decryption is sent to business service module;
The business service module be used for receive key management module transmission table end data, and according to table end data at
Reason.
2. there is the measuring instrument information security interactive system of acp chip as described in claim 1, which is characterized in that
The business service module services end data to key management module for sending;
The key management module is used to receive the service end data of business service module transmission, passes through key to service end data
It is encrypted, and encrypted service end data is sent to data acquisition module;
The data acquisition module is used to receive the service end data of key management module transmission, and service end data is sent to
Communication module;
The communication module is used to receive the service end data of key management module transmission, and service end data is sent to core
Chip;
The acp chip receives the service end data that communication module is sent, and service end data is decrypted.
3. there is the measuring instrument information security interactive system of acp chip as claimed in claim 2, which is characterized in that described
When key management system is used in measuring instrument for the first time with server communication, authentication is carried out to acp chip, certification passes through
Acp chip is numbered afterwards, measuring instrument number and user number are bound;And for receiving data acquisition module transmission
Table end data when, to acp chip number carry out authentication, certification success after verification measuring instrument number and user number
Whether the Data Matching with binding, if it does, then perform described the step of table end data is decrypted, if mismatched,
Described the step of table end data is decrypted is not performed then;
And/or the acp chip is used to carry out authentication operation after receiving to service end data, if authentication is led to
It crosses, then performs the step of described pair of service end data is decrypted, if authentication does not pass through, do not perform described pair of service
The step of end data is decrypted.
4. there is the measuring instrument information security interactive system of acp chip as described in claim 1, which is characterized in that different
Acp chip in measuring instrument uses different keys;And/or the control key management module is used under acp chip
Key algorithm or key are sent out, the acp chip is for receiving key algorithm or key that key management module issues, with initial
Change or update the key algorithm or key in acp chip.
5. there is the measuring instrument information security interactive system of acp chip as described in claim 1, which is characterized in that described
Acp chip is additionally operable to business logic processing, wherein, the service logic includes clearing logic;The clearing logic is according to metering
The unit price of the usage amount at instrument end, the remaining sum of server end and server end is settled accounts or the usage amount according to measuring instrument end
It is settled accounts with the surplus of server end.
6. the measuring instrument with acp chip, is used for and server communication, which is characterized in that the measuring instrument includes core
Chip and communication module;
The acp chip stores at least two keys, for measuring instrument to server send table end data when, be randomly assigned
One key pair table end data encryption, communication module is sent to by encrypted table end data;
The communication module is used to receive the table end data of acp chip transmission, and table end data is sent to server.
7. there is the measuring instrument of acp chip as claimed in claim 6, which is characterized in that the communication module is used to receive
The service end data of server, and service end data is sent to acp chip;The acp chip is used to receive communication module
The service end data of reception.
8. there is the measuring instrument of acp chip as claimed in claim 7, which is characterized in that the acp chip is used to connect
During by service end data authentication operation is carried out, if authentication passes through, performed described to server-side data deciphering
Step, if authentication does not pass through, the step of not performing the data deciphering to server-side.
9. there is the measuring instrument of acp chip as claimed in claim 6, which is characterized in that the acp chip is used to receive
The key algorithm or key that server issues, to initialize or update the key algorithm or key in acp chip;And/or institute
It states acp chip and stores at least two key algorithms, it is described to be randomly assigned the encryption of key pair table end data and include:Refer at random
A fixed key encrypts table end data by a kind of key algorithm randomly selected.
10. there is the measuring instrument of acp chip as claimed in claim 6, which is characterized in that the acp chip is used for industry
Business logical process, wherein the service logic includes clearing logic, the usage amount for settling accounts logic according to measuring instrument end, clothes
The remaining sum at business device end and the unit price of server end are settled accounts or according to the usage amount at measuring instrument end and the surplus of server end
It is settled accounts.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711440099.7A CN108173845B (en) | 2017-12-27 | 2017-12-27 | Metering instrument with core chip and information security interaction system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711440099.7A CN108173845B (en) | 2017-12-27 | 2017-12-27 | Metering instrument with core chip and information security interaction system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN108173845A true CN108173845A (en) | 2018-06-15 |
CN108173845B CN108173845B (en) | 2021-10-22 |
Family
ID=62522041
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201711440099.7A Active CN108173845B (en) | 2017-12-27 | 2017-12-27 | Metering instrument with core chip and information security interaction system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN108173845B (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114417416A (en) * | 2022-01-24 | 2022-04-29 | 成都秦川物联网科技股份有限公司 | Synchronous energy metering device embedded with information security module and Internet of things system |
CN117319450A (en) * | 2023-11-27 | 2023-12-29 | 成都秦川物联网科技股份有限公司 | Ultrasonic metering instrument data interaction method, device and equipment based on Internet of things |
Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101098225A (en) * | 2006-06-29 | 2008-01-02 | 中国银联股份有限公司 | Safety data transmission method and paying method, paying terminal and paying server |
CN102098391A (en) * | 2011-04-01 | 2011-06-15 | 成都市华为赛门铁克科技有限公司 | Communication terminal and communication information processing method thereof |
CN102143162A (en) * | 2011-01-21 | 2011-08-03 | 郑州华润燃气有限公司 | Encryption control circuit and operation control method for embedded remote transmission metering instrument |
CN102710414A (en) * | 2012-05-30 | 2012-10-03 | 中国电力科学研究院 | Randomized document block encryption method |
CN103763631A (en) * | 2014-01-07 | 2014-04-30 | 青岛海信信芯科技有限公司 | Authentication method, server and television |
CN105516210A (en) * | 2016-02-05 | 2016-04-20 | 山东信通电子股份有限公司 | System and method for terminal security access authentication |
CN106060064A (en) * | 2016-06-24 | 2016-10-26 | 刘虎 | Public service instrument system and management method thereof |
CN108418781A (en) * | 2017-02-10 | 2018-08-17 | 北京华大智宝电子系统有限公司 | A kind of control method of data transmission, device and safety bus module |
-
2017
- 2017-12-27 CN CN201711440099.7A patent/CN108173845B/en active Active
Patent Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101098225A (en) * | 2006-06-29 | 2008-01-02 | 中国银联股份有限公司 | Safety data transmission method and paying method, paying terminal and paying server |
CN102143162A (en) * | 2011-01-21 | 2011-08-03 | 郑州华润燃气有限公司 | Encryption control circuit and operation control method for embedded remote transmission metering instrument |
CN102098391A (en) * | 2011-04-01 | 2011-06-15 | 成都市华为赛门铁克科技有限公司 | Communication terminal and communication information processing method thereof |
CN102710414A (en) * | 2012-05-30 | 2012-10-03 | 中国电力科学研究院 | Randomized document block encryption method |
CN103763631A (en) * | 2014-01-07 | 2014-04-30 | 青岛海信信芯科技有限公司 | Authentication method, server and television |
CN105516210A (en) * | 2016-02-05 | 2016-04-20 | 山东信通电子股份有限公司 | System and method for terminal security access authentication |
CN106060064A (en) * | 2016-06-24 | 2016-10-26 | 刘虎 | Public service instrument system and management method thereof |
CN108418781A (en) * | 2017-02-10 | 2018-08-17 | 北京华大智宝电子系统有限公司 | A kind of control method of data transmission, device and safety bus module |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114417416A (en) * | 2022-01-24 | 2022-04-29 | 成都秦川物联网科技股份有限公司 | Synchronous energy metering device embedded with information security module and Internet of things system |
CN117319450A (en) * | 2023-11-27 | 2023-12-29 | 成都秦川物联网科技股份有限公司 | Ultrasonic metering instrument data interaction method, device and equipment based on Internet of things |
CN117319450B (en) * | 2023-11-27 | 2024-02-09 | 成都秦川物联网科技股份有限公司 | Ultrasonic metering instrument data interaction method, device and equipment based on Internet of things |
Also Published As
Publication number | Publication date |
---|---|
CN108173845B (en) | 2021-10-22 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103746800B (en) | TMK (terminal master key) safe downloading method and system | |
WO2020191458A1 (en) | Transaction types | |
CN101329786B (en) | Method and system for acquiring bank card magnetic track information or payment application for mobile terminal | |
CN109560931A (en) | A kind of equipment remote upgrade method based on no Certification system | |
CN101853453A (en) | System and method for realizing mobile payment | |
CN104794613B (en) | A kind of mobile device authentication method based on point-of-sale terminal | |
CN104506504B (en) | A kind of storage method and safety device of card-free terminal classified information | |
CN102819893A (en) | Air storage method | |
CN104166823A (en) | Intelligent medical data safety guarantee system | |
CN108173845A (en) | Measuring instrument and information security interactive system with acp chip | |
CN106020868B (en) | A kind of smart card firmware update and system | |
CN107104795A (en) | Method for implanting, framework and the system of RSA key pair and certificate | |
CN101141250A (en) | Instrument equipment, data safety access method, device and system | |
CN106910068B (en) | Multi-algorithm multi-key optical authentication offline payment method | |
CN103220136A (en) | Internet of things intelligent electricity meter with embedded information security management module | |
CN203219496U (en) | Internet of Things intelligent ammeter embedded with information security management module | |
CN115204198A (en) | Card making system, method and device, electronic equipment and storage medium | |
US11928672B2 (en) | Personalization method and system for financial IC card having dynamic verification code | |
CN103778530A (en) | Industry application account over-the-air transferring method, system and apparatus | |
CN209028611U (en) | A kind of UKEY crawler of data distribution file | |
KR102550098B1 (en) | Peer transaction system | |
CN201984481U (en) | Portable value storage device | |
CN101414333B (en) | Time safety transfer apparatus and time update method for transfer system | |
CN101576949A (en) | Movable storage device and method for safely transferring tax-controlled data | |
CN105989477A (en) | Data interaction method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |